$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 6JBjWeaPEXc8MiH6mDvrncpDyLV48S1f0QlfEwgnz9E= Subject key identifier: C5:66:EA:E2:11:C4:4B:9F:EB:6C:06:4D:C4:AA:D2:0B:1B:4B:9E:7B Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7A6BC8E772771B3FDBA78201C1A004DEFBA92BC1 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:51 +0000 ROA not before: Sun 30 Jul 2023 23:58:51 +0000 ROA not after: Mon 29 Jul 2024 00:03:51 +0000 asID: 38778 IP address blocks: 203.201.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 00:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6b:c8:e7:72:77:1b:3f:db:a7:82:01:c1:a0:04:de:fb:a9:2b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:51 2023 GMT Not After : Jul 29 00:03:51 2024 GMT Subject: CN=C566EAE211C44B9FEB6C064DC4AAD20B1B4B9E7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5d:cd:6a:a8:a8:8a:57:a1:1c:7b:3d:d7:32: d3:8c:81:e5:47:0b:7a:48:b0:17:d8:a0:2f:67:cf: 10:c7:62:ca:0d:dc:8c:d1:0d:dd:aa:b8:f1:21:7c: 5f:88:c2:bb:89:0a:73:d2:30:2d:09:c8:4d:41:1f: 0b:3c:2a:2d:6b:81:a8:02:1f:b1:61:10:9e:ad:ac: dc:95:13:50:80:d7:7c:a8:8c:62:d7:1b:aa:5e:ea: 29:2e:7d:4b:37:85:5b:1b:43:97:97:bf:f0:eb:0f: 9c:6e:76:c8:16:be:51:eb:2f:b4:fc:34:b3:17:a5: 25:b0:3a:fa:68:8d:48:a8:57:83:2b:33:5d:20:29: 04:a1:c8:0f:b4:a3:25:01:31:8e:90:36:4f:13:82: 2d:fc:7c:10:24:04:36:ea:2a:31:5a:fe:12:65:cc: 33:70:de:dd:a0:47:14:25:8b:1d:67:98:41:ff:00: 12:4b:07:74:c1:47:3d:7a:98:85:6c:45:54:30:3e: 4c:ae:79:49:4b:ab:34:9c:5f:21:11:34:e1:14:e9: d5:29:b0:5e:05:e1:68:46:b2:8c:8f:cf:13:54:34: fc:29:1d:cb:53:ab:fe:b2:85:bf:85:cb:24:52:a6: 0f:c9:69:59:79:de:06:3e:8f:e2:a8:81:5e:ed:3c: 1a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:66:EA:E2:11:C4:4B:9F:EB:6C:06:4D:C4:AA:D2:0B:1B:4B:9E:7B X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/24 Signature Algorithm: sha256WithRSAEncryption 69:5a:96:39:c8:6f:58:61:48:56:d4:df:b0:cf:c5:cc:40:d6: 95:1a:75:c2:cb:5b:7e:12:92:36:1a:76:7d:05:87:00:b2:c7: ab:ca:9a:0a:29:f8:3c:28:94:60:44:eb:3e:dd:3a:04:6f:5d: 04:0c:32:0f:f0:24:ca:21:e9:08:1a:8e:11:ac:17:ba:c1:6c: eb:bc:1e:01:bb:5b:b3:f0:44:89:2b:23:51:f6:e3:b2:4e:f0: ac:4c:01:b0:94:48:e6:47:96:f8:60:2b:f3:dc:76:d3:93:e3: 27:ef:5a:96:4a:64:d1:90:1b:f3:51:95:9a:e0:c1:82:a1:ab: 93:b2:f9:06:79:25:74:77:ce:9d:3d:92:8f:67:00:ca:ea:72: b5:bd:95:95:bc:aa:0d:56:de:71:7a:86:bf:51:ef:c2:ca:c6: b2:f5:55:5b:5a:17:dc:5e:1e:75:82:1f:ee:56:cc:bf:9b:bb: e3:98:fb:50:f9:b0:66:86:91:bf:11:f0:ec:03:3d:ae:3d:38: 95:84:fb:f9:1b:c0:50:69:c4:04:d7:bd:1d:52:4e:c5:21:fe: 85:b8:28:82:18:af:8f:17:d3:c4:2c:9f:f6:24:a9:79:9e:5b: bc:e2:bb:b0:34:45:21:7f:fc:e2:86:6b:ba:38:be:2e:a7:da: 4a:77:ab:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUemvI53J3Gz/bp4IBwaAE3vupK8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTFaFw0yNDA3MjkwMDAzNTFaMDMxMTAvBgNV BAMTKEM1NjZFQUUyMTFDNDRCOUZFQjZDMDY0REM0QUFEMjBCMUI0QjlFN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkXc1qqKiKV6Ecez3XMtOMgeVH C3pIsBfYoC9nzxDHYsoN3IzRDd2quPEhfF+IwruJCnPSMC0JyE1BHws8Ki1rgagC H7FhEJ6trNyVE1CA13yojGLXG6pe6ikufUs3hVsbQ5eXv/DrD5xudsgWvlHrL7T8 NLMXpSWwOvpojUioV4MrM10gKQShyA+0oyUBMY6QNk8Tgi38fBAkBDbqKjFa/hJl zDNw3t2gRxQlix1nmEH/ABJLB3TBRz16mIVsRVQwPkyueUlLqzScXyERNOEU6dUp sF4F4WhGsoyPzxNUNPwpHctTq/6yhb+FyyRSpg/JaVl53gY+j+KogV7tPBr3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxWbq4hHES5/rbAZNxKrSCxtLnnswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8msMA0GCSqG SIb3DQEBCwUAA4IBAQBpWpY5yG9YYUhW1N+wz8XMQNaVGnXCy1t+EpI2GnZ9BYcA sserypoKKfg8KJRgROs+3ToEb10EDDIP8CTKIekIGo4RrBe6wWzrvB4Bu1uz8ESJ KyNR9uOyTvCsTAGwlEjmR5b4YCvz3HbTk+Mn71qWSmTRkBvzUZWa4MGCoauTsvkG eSV0d86dPZKPZwDK6nK1vZWVvKoNVt5xeoa/Ue/Cysay9VVbWhfcXh51gh/uVsy/ m7vjmPtQ+bBmhpG/EfDsAz2uPTiVhPv5G8BQacQE170dUk7FIf6FuCiCGK+PF9PE LJ/2JKl5nlu84ruwNEUhf/zihmu6OL4up9pKd6tE -----END CERTIFICATE-----Generated at Sun Apr 14 23:38:37 2024 by rpki-client on console-ams.rpki-client.org